Session Problem with PostNuke

ftree · October 23rd, 2004, 08:33 AM

Hi
I have installed PotoPost und PostNuke. I have installed the PotoPost to use the User Tables from the PostNuke CMS. But the login/logout mechanism doesn't work

I have installed the CMS into www.flo-style.org/photopost
the Photopost into www.flo-style.org/photopost/modules/Gallery

In the config.inc.php I have set the folling cookie settings
$cookie_path = "/photopost";
$cookie_domain = ".flo-style.org";
$cookieprefix="";

When I login into the CMS I'm not logged in into the Photopost.
So do I have to change some code to get it work, or are these three cookie parameters all I have to set?

Please help I am on despair.

lg Florian

Chuck S · October 23rd, 2004, 11:34 AM

How about PMing a TEST LOGIN so we can see how your postnuke cookie is set

However there is one huge error here in your settings

$cookie_path="/photopost"; WAY BAD

$cookie_path="/"; would be correct to be site wide

Note your cookie settings for path and domain and prefix need to be the same as your post nuke for the integrated login to work

ftree · October 24th, 2004, 07:52 AM

HI

I have tried to set $cookie_path="/".
But the login/logout still doesn't work.
Does anyone know the Default Value for $cookieprefix for PostNuke.

Here are my cookies for flo-style.org
see here

I have see the functions setlogin and logout in the postnuke.php file, where the Userinfo will be stored in the cookie. Do I have to call these functions anywhere in my PostNuke code.

lg Florian

Chuck S · October 24th, 2004, 08:24 AM

Well you have changed to an internal install instead of integrated now

The problem still remains the same here. You have not changed your cookie path for PostNuke

It remains

/photopost

No matter how much you play with Photopost your never gonna get an integrated login till you set your cookie path in Postnuke to /

Simple cookie logic here. They need to match. I am not familiar with PostNuke and where they set the cookie settings but you either need to check the admin config options or the config file itself. You may need to ask postnuke dudes where to set the cookie site wide

ftree · October 24th, 2004, 08:53 AM

OK Now I have changed the cookie_path in PostNuke to "/".
My cookies looke like this know. But it still doesn't work.

Do I have to change some code to get it work?

Thanks for your patience.
lg Florian

Chuck S · October 24th, 2004, 08:58 AM

How is it going to work if you have Photopost set to Internal instead of PostNuke Integration?

You need to go back to postnuke integration

ftree · October 24th, 2004, 09:06 AM

At the installtion I chosse the option to use the External User DB.
How can I change the option in the PhotoPost?

lg Florian

Chuck S · October 24th, 2004, 09:46 AM

Well I looked at the integration file and your write it will never work

PostNuke works with a session cookie period and we arent even pulling the session

If you PM me a database link and login to see how sessions are stored in PostNuke etc I may be able to rewrite a module that works.

PS. I find Postnuke is a free download so I am just gonna download and play

Chuck S · October 25th, 2004, 10:49 AM

Okay here is a working Postnuke module. I tested it on the 750 thats out the new one.

It totally read the POSTNUKESID cookie and authenticates just fine

Download this txt file and rename it to postnuke.php and upload to your Photopost forums directory.

ftree · October 26th, 2004, 07:24 AM

HI omegatron

Thanks for your help.
It didn't realy worked, but I have done some changes to your File
The Problem is that I don't get the ppass cookie info so the if clause in line 270 does not match because the $md5cookpass is empty.

Code:

Content visible to verified customers only.

I have changed it to

Code:

Content visible to verified customers only.

I have also set the ppid and pppass cookie vars at this position
The block now looks like this

Code:

Content visible to verified customers only.

Whould that be a security hole to do this?

I think the problem is, when I login to PostNuke the setlogin function fromthe postnuke.php file is never called, and so the phtopost cookies are not set. It only works when you login to photopost.
Can I call the setlogin function anywhere in the PostNuke files?

lg Florian

Chuck S · October 26th, 2004, 10:34 AM

Okay you dont need to call anything from Photopost

Keep in mind your using a new postnuke that we never tested with. It was just released a month ago but I have wrote a new module. It is attached above. Just redownload the file

You can test here

http://omegatron.net/postnuke

http://omegatron.net/gallery

user test

password testing

You can login either side and your logged in

remember to also check your cookie settings if your not loggin in both ways as they may not be aligned like before when I told you they where not.

ftree · October 26th, 2004, 11:27 AM

Have seen it - thanks
It' working now

lg Florian

Chuck S · October 26th, 2004, 11:43 AM

Yep works totally off the session cookie